Unrated severityNVD Advisory· Published May 26, 2022· Updated Sep 16, 2024
CSRF Bypass in Proxy Server
CVE-2021-34360
Description
A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4.2 ( 2021/12/30 ) and later QuTS hero h5.0.0: Proxy Server 1.4.3 ( 2022/01/18 ) and later QuTScloud c4.5.6: Proxy Server 1.4.2 ( 2021/12/30 ) and later
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.4.2
- QNAP Systems Inc./Proxy Serverv5Range: unspecified
Patches
Vulnerability mechanics
References
1- www.qnap.com/en/security-advisory/qsa-22-18mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.